Bug#928054: marked as done (CVE-2019-11461)

[Debian Bug Tracking System]

Your message dated Wed, 29 May 2019 12:18:31 +0000
with message-id <e1hvxxl-0006yk...@fasolo.debian.org>
and subject line Bug#928054: fixed in nautilus 3.30.5-2
has caused the Debian Bug report #928054,
regarding CVE-2019-11461
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
928054: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928054
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: nautilus
Severity: important
Tags: security

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11461

Cheers,
        Moritz

--- End Message ---

--- Begin Message ---

Source: nautilus
Source-Version: 3.30.5-2

We believe that the bug you reported is fixed in the latest version of
nautilus, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 928...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Iain Lane <la...@debian.org> (supplier of updated nautilus package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 May 2019 12:47:33 +0100
Source: nautilus
Architecture: source
Version: 3.30.5-2
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers 
<pkg-gnome-maintain...@lists.alioth.debian.org>
Changed-By: Iain Lane <la...@debian.org>
Closes: 928054
Changes:
 nautilus (3.30.5-2) unstable; urgency=medium
 .
   * debian/control{,.in}, gbp.conf: Update debian branch to debian/buster
   * Update gnome-desktop code. Nautilus contains a copy of this code,
     which originated in gnome-desktop3.
       + Fixes a potential crash during thumbnailing
       + Fixes thumbnailer on 32-bit systems where /lib64 is not available.
       + Also improves handling of usrmerged and non-usrmerged systems.
       + Mounts the fontconfig cache dir, to improve performance if fontconfig
         is used
         - Add a corresponding BD on libfontconfig1-dev, to fetch the needed
           variable from its pcfile.
       + Fixes seccomp filter bypass. CVE-2019-11461
       + Closes: #928054
Checksums-Sha1:
 f328ca6854824cd309cc652222d5e065f1549857 3050 nautilus_3.30.5-2.dsc
 7b6866e0c9619c13bd323a55e64090870c28d99d 25772 nautilus_3.30.5-2.debian.tar.xz
 09cf378adaf4e4ce319fb5a06f0d921e9d9f0f75 20162 
nautilus_3.30.5-2_source.buildinfo
Checksums-Sha256:
 9575ee1b4a3c14cd2f4e37de2252903f440d98501910d8ad703c87c2ca892532 3050 
nautilus_3.30.5-2.dsc
 36f44b48f70f00158d31a32221cc95e1564b28ded91067c3952f29a56e45ee33 25772 
nautilus_3.30.5-2.debian.tar.xz
 16204bb961abbd60c293c31c49494363534b54819f550e4f091633511dd1fa25 20162 
nautilus_3.30.5-2_source.buildinfo
Files:
 c36340a3c75c591a17481d5c77154e53 3050 gnome optional nautilus_3.30.5-2.dsc
 edd1a0cf30d1e4386fdecd3acf16ee6e 25772 gnome optional 
nautilus_3.30.5-2.debian.tar.xz
 8b6e1f3c77b16fc59260c2e4b3becccb 20162 gnome optional 
nautilus_3.30.5-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=/L2a
-----END PGP SIGNATURE-----

--- End Message ---